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(54) Service providing system in which services are provided from service provider apparatus 
to service user apparatus via network 



(57) A service user's personal information that has 
been verified and to which a digital signature has been 
attached by a personal information verification appara- 
tus 1 1 (signed-personal information) is stored in a highly 
secure form within a service user apparatus 12. For re- 



ceiving services, the service user apparatus 12 trans- 
mits the signed-personal information stored therein, to 
a service provider apparatus 13. The service provider 
apparatus 13 verifies the signed-personal information 
based on the digital signature, and then provides serv- 
ices based on the personal information. 
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Description 

BACKGROUND OF THE INVENTION 
(1) Field of the Invention 

[0001] The present invention relates to a service pro- 
viding system in which various services (e.g., sale of 
commodities and pay distribution of digital content in- 
cluding music and video) are provided from a provider 
to a user via a network such as the Internet. In particular, 
the present invention relates to a service providing sys- 
tem where the security of a user" personal information 
is protected with high reliability in providing services to 
the user. The present invention also relates to a service 
providing method realizing the same. 

(2) Description of Related Art 



[0002] With the recent widespread use of the Internet 
in ordinary households, a significant growth has been 
made in the business of providing various pay services 
(e.g., sale of commodities and distribution of digital con- 
tent such as music and video) via a network. For receiv- 
ing such services, service users are required to send 
their personal information necessary for the commodity 
delivery, payment, etc. to service providers. Typical ex- 
amples of such personal information include a name, 
address, telephone number, and credit card number. 
Service providers verify personal information sent from 
users for user authentication purposes, and provide 
services only to users whose personal information is 
proven authentic. 

[0003] However, it is inconvenient for such a user who 
repeatedly uses services of the same service provider, 
to send his or her personal information every time when 
intending to receive services from the service provider. 
It is also burdensome for the service provider side to 
verify personal information sent from a large number of 
users every time when providing services to them. 
[0004] In view of this, service providing systems that 
can improve the convenience of service users and alle- 
viate burdens on service providers are sought after. 
[0005] The following is one example of basic forms of 
such systems. In the system, a service user is required 
to send his or her personal information to a service pro- 
vider only when using the service provider for the first 
time. The personal information is verified and registered 
by the service provider. To be more specific, the service 
provider enters in its database, the verified personal in- 
formation together with a user ID and password set by 
the service user. Once the personal information is reg- 
istered, the service user is simply required to send the 
registered user ID and password to the service provider 
when intending to receive services. The service provider 
authenticates the service user with the use of the pass- 
word, and obtains the service user's personal informa- 
tion based on the user ID, out of plural sets of personal 



information that have been registered. In this system, 
each service user is not required to send his or her per- 
sonal information every time when intending to receive 
services. Also, the service provider is required to verify 
5 each user's personal information once. 

[0006] In the above system, however, a service user 
who uses a plurality of service providers needs to reg- 
ister a different user ID and a different password with 
each service provider, and to memorize the registered 
10 user IDs and passwords. In this case, the service user 
is likely to suffer from complicated management of the 
user IDs and passwords. Further, even with the need to 
verify each user's personal information only once, the 
service provider side may still suffer from a heavy 
15 processing load if the number of service users is large. 
[0007] In view of such disadvantages , service provid- 
ing systems that include a management center dedicat- 
ed to verification of personal information and manage- 
ment of verified personal information have been devel- 
20 oped. A typical example of such is a system employing . 
NET Passport (described in "Microsoft .NET Passport 
Technical Overview (September 2001 )"). 
[0008] In the system employing.NET Passport, a 
service user registers in advance his or her personal in- 
25 formation with a management center, together with a us- 
er ID and password. For registration of personal infor- 
mation, the management center performs the same ver- 
ification process as performed by the service provider 
in the above system. To receive services from the serv- 
30 ice provider, the service user, who has once registered 
his or her personal information, sends the user ID and 
password to the management center, so as to obtain the 
registered personal information. Then, the service user 
sends the obtained personal information to the service 
35 provider. It should be noted here that the management 
center holds a private cryptograph key unique to each 
service provider, and each service provider shares the 
corresponding unique private cryptograph key. The 
management center encrypts the personal information 
40 using the key shared by the service provider, and trans- 
mits the encrypted personal information to the service 
user. The service user receives the encrypted personal 
information from the management center, and transmits 
the encrypted personal information to the service pro- 
45 vider. The service provider receives the encrypted per- 
sonal information from the service user, and decrypts 
the encrypted personal information using the shared 
key. 

[0009] In this system, the service user is simply re- 
50 quired to register one user ID and one password with 
the management center. Also, the service provider is 
freed from the heavy processing load of verifying per- 
sonal information. 

[0010] However, the service providing system includ- 
55 ing the management center has the following problem. 
[0011] The management center manages personal 
information for all service users who have used any 
service providers within the system. This means that 
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personal information for a large number of service users 
is concentrated at the management center. The man- 
agement center storing personal information for a large 
number of service users can often be targeted by hack- 
ers who attempt an unauthorized access to the personal 
information. If the database of personal information is 
subjected to such an unauthorized access, a massive 
amount of personal information could leak out. This pos- 
sibility may cause service users to feel uncertain about 
the security of the system, and to hesitate to receive 
services via a network. Such lack of user confidence in 
the system security may hinder the widespread and ad- 
vancement of the business of providing services via a 
network. 

[0012] Further, in the system, the service users are 
required to access the management center every time 
when they intend to receive services. This increases the 
processing load on the management center. If a large 
number of service users access the management center 
at the same time, the management center may fail or 
crush due to the heavy processing load exceeding its 
capacity. 

SUMMARY OF THE INVENTION 

[001 3] In view of the above problems, the object of the 
present invention is to provide a service providing sys- 
tem thafcjncludes a management center and that has 
enhanced security in managing personal information 
and enhanced stability and reliability during the system 
operation. 

[0014] s/To achieve the above object, the present in- 
vention provides a service providing system that in- 
cludes ^verification apparatus, a service user appara- 
tus, and a service provider apparatus. The verification 
apparatus is operable to receive a user's personal infor- 
mation, and includes a personal information verification 
unit operable to verify an authenticity of the user's per- 
sonal information and a signed-personal information 
generation unit operable, when the verification by the 
personal information verification unit is successful, to 
generate signed-personal information by attaching a 
digital signature to the user's personal information and 
to transmit the signed-personal information. The service 
user apparatus includes a signed-personal information 
reception unit operable to transmit the user's personal 
information to the verification apparatus and to receive 
the signed-personal information from the verification ap- 
paratus, an information management unit operable to 
store and manage the received signed-personal infor- 
mation, a service request transmission unit operable to 
read the signed-personal information from the informa- 
tion management unit and to transmit the read signed- 
personal information together with a service request, 
and a service reception unit operable to receive servic- 
es. The service provider apparatus is operable to pro- 
vide, based on the user* s personal information, the 
services to the service user apparatus via the network, 



and includes a service request reception unit operable 
to receive the service request and the signed-personal 
information from the service user apparatus, a signed- 
personal information verification unit operable to verify 
s an authenticity of the received signed-personal informa- 
tion, based on the digital signature included therein and 
a service provision un it operable to provide the services 
to the service user apparatus in response to the service 
request, when the verification by the signed-personal in- 
fo formation verification unit is successful. 

[0015] According to this construction, verified person- 
al information (signed-personal information) for each 
user is not centrally stored by the personal information 
verification apparatus placed at the management cent- 
's er, but is stored in the service user apparatus held by 
each user. Due to this, such a case can be avoided 
where a single unauthorized access to the personal in- 
formation verification apparatus causes a massive 
amount of personal information to leak out from the ap- 
20 paratus. Therefore, the system security can be en- 
hanced. Also, the service user apparatus is not required 
to access the personal information verification appara- 
tus when receiving services. Even if a large number of 
users request services at the same time in the service 
25 providing system, an excessively heavy load is not 
placed on the personal information verification appara- 
tus. Therefore, the stability and reliability of the service 
providing system during operation can be enhanced. 
[0016] Further, in conventional service providing sys- 
30 terns, a service user apparatus is required to access an 
authentication center every time when receiving servic- 
es. In such systems, the authentication center can be 
given information about the state of service use, such 
as information about the frequency and types of service 
35 providers each user uses (i.e., preference of each serv- 
ice user, sales performance of each service provider, 
etc.). In the service providing system relating to the * 
present embodiment, however, the service user appa- 
ratus is not required to access the authentication center 
40 when receiving services. Therefore, service users and 
service providers in the system do not have to worry 
about leakage of the information via the authentication 
center. 

[0017] Here, the information management unit may 
45 be operable to store the signed-personal Information In 
a state that prevents external access thereof, and to al- 
low the signed-personal information to be read only 
when key information set in advance is inputted. 
[0018] According to this construction, signed-person- 
so a i information for each user is stored, in a highly secure 
form, in the service user apparatus held by each service 
user. It is therefore difficult for a third party, with the in- 
tension of abusing the personal information, to read the 
signed-personal information in an unauthorized man- 
55 ner. Therefore, the reliability of the signed-personal in- 
formation is not degraded as compared with the case of 
conventional systems. Specifically, the key information 
may be password information or biometrics information. 
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[001 9] Further, the Information management unit may 
comprise a key generation subunit operable to generate 
an encryption key to be used for encrypting the signed- 
personal information, and a decryption key to be used 
for decrypting the encrypted signed-personal informa- 
tion, a key storage subunit operable to store the decryp- 
tion key, an encryption subunit operable to encrypt the 
signed-personal information using the encryption key, 
an information storage subunit operable to store the 
signed-personal information encrypted by the encryp- 
tion subunit, and a decryption subunit operable to de- 
crypt the encrypted signed-personal Information read 
from the information storage subunit using the decryp- 
tion key read from the key storage subunit. 
[0020] According to this construction, the reliability of 
the signed-personal information stored in the service us- 
er apparatus can be enhanced further. This Is because 
the signed-personal information Is encrypted, and its 
key for decryption is stored in a protected area. In addi- 
tion, only keys, whose data amount is small, are stored 
in the protected area. A storage medium to be used here 
can therefore be realized by a low-cost medium in which 
the protected area occupies only a small area within the 
entire storage area. Specifically, the information man- 
agement unit may comprise an IC memory card that in- 
cludes a protected storage area, a general storage area, 
and an arithmetic unit. The protected storage area may 
be protected from external access thereof, the general 
storage area may allow external access thereof, the 
arithmetic unit may be operable to execute a program, 
the encryption subunit and the decryption subunit may 
be realized by the arithmetic unit executing programs 
stored in the protected storage area, the key storage 
subunit may be operable to store the decryption key into 
the protected storage area, and the information storage 
subunit may be operable to store the encrypted signed- 
personal information into the general storage area. 
[0021] Also, to further ensure the reliability of the 
signed-personal information, the service request recep- 
tion unit may be operable to transmit a personal infor- 
mation request to the service user apparatus, before re- 
ceiving the signed-personal information from the service 
user apparatus, and the service request transmission 
unit may be operable to receive the personal information 
request before starting to transmit the signed-personal 
information, and only when the received personal infor- 
mation request satisfies a predetermined condition, to 
transmit the signed-personal information to the service 
provider apparatus. 

[0022] According to this construction, even if a third 
party attempts to impersonate the service provider and 
obtain, in an unauthorized manner, signed-personal in- 
formation that is being transmitted to the service provid- 
er, such an attempt ends in failure. Therefore, the relia- 
bility of the signed-personal information within the sys- 
tem is enhanced. Specifically, the personal information 
request may have been generated in a format deter- 
mined in advance, the personal information request may 



have been verified and a digital signature may have 
been attached thereto by the verification apparatus, and 
the service request transmission unit may be operable 
to verify an authenticity of the digital signature attached 

5 to the personal information request using a form-signing 
public key distributed in advance from the verification 
apparatus, and when the verification of the digital sig- 
nature using the form-signing public key is successful, 
to determine that the personal information request sat- 

10 jsfies the predetermined condition. That is to say, the 
personal information verification apparatus also verifies 
authenticity of the contents of the personal information 
request in advance, in the same manner as that for ver- 
ifying an authenticity of personal information in advance. 

15 [0023] Also, a digital signature may be attached in the 
following way. That is, the user's personal information 
may comprise a plurality of data items, the signed-per- 
sonal information generation unit may be operable to 
generate the signed-personal information, by attaching 

20 a digital signature to each data item of the user's per- 
sonal information, and the signed-personal information 
verification unit may be operable to verify an authenticity 
of the signed-personal information, by verifying an au- 
thenticity of the digital signature attached to each data 

25 item. Due to this, the signature verification can be strictly 
performed in units of items of personal information. 
[0024] Also, the user's personal information may 
comprise a plurality of data items, the signed-personal 
information generation unit may be operable to generate 

30 the signed-personal information, by attaching a user ID 
unique to the user to each data item and attaching a 
digital signature to each data item to which the user ID 
has been attached, and the signed-personal information 
verification unit may be operable to judge whether user 

35 IDs attached to all data items of the signed-personal in- 
formation received by the service request reception unit 
match, and when judging that the user IDs do mot 
match, to determine that verification of the signed-per- 
sonal information is unsuccessful. 

40 [0025] According to this construction, even if a service 
user attempts to tamper his or her signed-personal in- 
formation with the intension of receiving services in an 
unauthorized manner, such an attempt ends in failure. 
For example, two service users may attempt to combine 

45 items of their signed-personal information so as to forge 
signed-personal information for a person who does not 
actually exist. In such a case, although each item of the 
forged personal information is given a signature that is 
authentic, user I Ds attached to all the items of the forged 

so personal information do not match. The service provider 
can therefore detect such forged personal information. 
Specifically, the signed-personal information generation 
unit may be operable to attach, to each data item to 
which the user ID has been attached, a digital signature 

55 generated using contents of the data item and the user 
ID, and the signed-personal information verification unit 
may be operable to verify an authenticity of the signed- 
personal information, by verifying an authenticity of the 
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digital signature attached to each data item. 
[0026] Also, the service user apparatus may further 
include an authentication key generation unit operable 
to generate a pair of public and private keys to be used 
for authentication of the service user apparatus, and a 5 
private key storage unit operable to store, in a form that 
limits external access thereof, the private key generated 
by the authentication key generation unit, the signed- 
personal information reception unit may be operable to 
incorporate the private key generated by the authenti- 10 
cation key generation unit into the user's personal infor- 
mation that is to be transmitted to the verification appa- 
ratus, the service request transmission unit may be op- 
erable to incorporate the private key generated by the 
authentication key generation unit into the signed-per- 15 
sonal information that is to be transmitted to the service 
provider apparatus, and the slgned-personal informa- 
tion verification unit may be operable to perform authen- 
tication of the service user apparatus using a public key 
encryption method, by referring to the private key incor- 20 
porated in the signed-personal information transmitted 
by the service request transmission unit, and when the 
authentication is successful, to determine that verifica- 
tion of the signed-personal information is successful. 
[0027] According to this construction, when signed- 25 
personal information is transmitted from the service user 
apparatus; to the service provider apparatus, the service 
provider apparatus authenticates a transmission source 
of the signed-personal information. Therefore, even if 
the signedrpersonal information being transmitted from 30 
the service user apparatus to the service provider ap- 
paratus is wiretapped by a third party, the third party can- 
not receive services in an unauthorized manner using 
the wiretapped personal information. Therefore, the re- 
liability of the signed-personal information can be en- 35 
hanced further. Moreover, the private key storage unit 
may comprise a storage medium having a protected 
storage area that allows only limited external access 
thereof, and store the private key into the protected stor- 
age area. 40 

BRIEF DESCRIPTION OF THE DRAWINGS 

[0028] These and other objects, advantages and fea- 
tures of the invention will become apparent from the fol- 45 
lowing description thereof taken in conjunction with the 
accompanying drawings that illustrate a specific embod- 
iment of the invention. 
[0029] In the drawings: 

so 

FIG. 1 is a block diagram showing the overall con- 
struction of a service providing system to which a 
preferred embodiment of the present invention re- 
lates; 

FIG. 2 shows a processing flow of a personal infor- 55 
mation verification procedure in the embodiment; 
FIG. 3 shows an example structure of personal in- 
formation that is yet to be verified in the embodi- 
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ment; 

FIG. 4 shows an example structure of signed-per- 
sonal information in the embodiment; 
FIG. 5 shows a processing flow of a service provi- 
sion procedure in the embodiment; 
FIG. 6 shows an example structure of partial per- 
sonal information in the embodiment; 
FIG. 7 is a block diagram showing the construction 
of a personal information verification apparatus in 
the embodiment; 

FIG. 8 is a block diagram showing the construction 
of a service user apparatus in the embodiment; 
FIG. 9 is a block diagram showing the construction 
of a memory card included in the service user ap- 
paratus in the embodiment; 
FIG . 1 0 is a block diagram showing the construction 
of the service provider apparatus In the embodi- 
ment; 

FIG. 11 shows a processing flow of a personal in- 
formation verification procedure in a modified ex- 
ample of the embodiment; 

FIGS. 12A shows personal information that is yet to 
be verified in the modified example; 
FIG. 1 2B shows personal information that has been 
verified in the modified example; and 
FIG. 13 shows a processing flow of a service provi- 
sion procedure in the modified example. 

DESCRIPTION OF THE PREFERRED EMBODIMENT 

[0030] The following describes a preferred embodi- 
ment of the present invention in detail, with reference to 
the drawings. 

First Embodiment 

[Overall Construction] 

[0031] FIG. 1 is a diagram showing the overall con- 
struction of a service providing system to which a first 
embodiment of the present invention relates. The serv- 
ice providing system 1 relating to the present embodi- 
ment is a system in which pay services are provided 
from a service provider to a service user. In the system 
1 , the service userpresents, to the service provider, per- 
sonal information that is verified and signed in advance 
by an authentication center, when the service user in- 
tends to receive services. 

[0032] The service providing system 1 has the follow- 
ing apparatus construction. A personal information ver- 
ification apparatus 11 , a service user apparatus 12, and 
a service provider apparatus 1 3 are connected with one 
another via a network "N". The personal information ver- 
ification apparatus 11 is placed at the authentication 
center that performs verification operations of service 
users' personal information for user authentication pur- 
poses. The service user apparatus 1 2 is used by a serv- 
ice user who intends to receive services. The service 



BNSDOCID: <EP 1340O34A2J_> 



9 EP 1 349 034 A2 10 



provider apparatus 13 is used by a service provider who 
provides services. Although the system 1 is assumed to 
include a plurality of service user apparatuses and a plu- 
rality of service provider apparatuses, only one service 
user apparatus and one service provider apparatus are 
shown in the figure for ease of explanation. 
[0033] The personal information verification appara- 
tus 11 is specifically realized by a computer or a server 
that executes a program for user authentication. Also, 
the service user apparatus 1 2 is realized by a personal 
computer connected to the network "N M or a portable ter- 
minal having communication functions. The personal 
computer or the portable terminal executes a program 
supplied in advance by the authentication center to the 
user and installed therein, so as to function as the serv- 
ice user apparatus 12. As one example, the program 
installed here may have been downloaded from a web 
page managed by the authentication center. The service 
provider apparatus 13 is realized by a computer or a 
server that executes a program for service provision. 
[0034] The personal information verification appara- 
tus 1 1 verifies a user's personal information that is trans- 
mitted from the service user apparatus 1 2. The personal 
information verification apparatus 11 attaches a digital 
signature to the verified personal information, and re- 
turns the personal information having the digital signa- 
ture to the service user apparatus 12. The digital signa- 
ture guarantees, to the service provider, that the person- 
al information having the digital signature (hereafter re- 
ferred to asthe "signed-personal information") is reliable 
without containing any errors or is not false. The per- 
sonal information verification apparatus 11 does not 
hold personal information. 

[0035] The service user apparatus 1 2 transmits the 
user's personal information inputted by the user, to the 
personal information verification apparatus 11, where 
the personal information is verified . The service user 
apparatus 12 stores the verified signed-personal infor- 
mation into its internal memory card that allows only lim- 
ited references from outside. Thereafter, upon receipt of 
a user instruction to obtain services, the service user 
apparatus 12 transmits the signed-personal informa- 
tion, together with a service request, to the service pro- 
vider apparatus 1 3. The service user apparatus 1 2 then 
receives the requested service content from the service 
provider apparatus 13. It should be noted here that this 
signed-personal information is valid only for a service 
provider apparatus 13 managed by a service provider 
that has made a contract with the authentication center 
to participate in the service providing system 1 . 
[0036] The service provider apparatus 13 provides 
services based on signed-personal information. The 
signed-personal information is transmitted by the user 
who intends to receive services using the service user 
apparatus 12. Before providing services, the service 
provider apparatus 13 verifies only the digital signature 
included in the signed-personal information, without ver- 
ifying the personal information itself. To verify the digital 



signature, the service provider apparatus 13 uses sig- 
nature verification data (e.g., a public key) obtained in 
advance from the personal information verification ap- 
paratus 11. For example, this signature verification data 

5 may be transmitted from the personal information veri- 
fication apparatus 11 to the service provider apparatus 
13 at the time when the service provider managing the 
service provider apparatus 1 3 signs the contract with the 
authentication center. 

10 [0037] In the service providing system 1 relating to the 
present embodiment as described above, verified 
signed-personal information for each user is not stored 
in the personal information verification apparatus 11 
placed at the authentication center, but is stored in the 

is service user apparatus 1 2 that is held by each user. Al- 
so, the service user apparatus 12 is not required to ac- 
cess the personal information verification apparatus 11 
when receiving services. This system 1 is therefore free 
from such problems that are likely to cause the security 

20 and the operation stability of the system to be degraded. 
The problems include the concentration of a massive 
amount of personal information at the authentication 
center, and the jamming of accesses to the authentica- 
tion center. 

25 [0038] Further, with the enhanced security in manag- 
ing signed-personal information at the service user ap- 
paratus 12, the risk of leakage, tampering, etc., of the 
signed-personal information can be prevented from in- 
creasing as compared with the case of conventional 

30 systems. 

[0039] To be more specific, the service providing sys- 
tem 1 relating to the present embodiment solves con- 
ventional problems by enabling signed-personal infor- 
mation for each user to be stored in the service user 
35 apparatus held by each user. At the same time, the serv- 
ice providing system 1 prevents deterioration in the re- 
liability of signed-personal information, by enabling the 
signed-personal information to be managed strictly by 
the service user apparatus. [Processing Flow] 
40 [0040] The following describes a flow of the process- 
ing to be executed in the service providing system 1 re- 
lating to the present embodiment. 
[0041] As can be known from the explanation given 
on the overall construction, the processing to be execut- 
es ed in the service providing system 1 can be roughly di- 
vided into two procedures . One procedure relates to 
verification of a service user's personal information 
(hereafter referred to as a "personal information verifi- 
cation procedure"), and is executed by the personal in- 
50 formation verification apparatus 11 and the service user 
apparatus 12. The other procedure relates to provision 
of services from the service provider to the service user 
(hereafter referred to as a "service provision proce- 
dure"), and is executed by the service user apparatus 
55 1 2 and the service provider apparatus 13. The following 
describes a processing flow of each procedure, with ref- 
erence to the drawings. (Personal Information Verifica- 
tion Procedure) 
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[0042] The following first describes a processing flow 
of the personal information verification procedure, with 
reference to the drawings. 

[0043] FIG. 2 shows the processing flow of the per- 
sonal information verification procedure that is executed 5 
by the personal information verification apparatus 11 
and the service user apparatus 12. 



(1) Receive Input of User's Personal Information 



(2) Verify.User's Personal Information 

[0046] Next, the personal information verification ap- 
paratus 1,1 ^verifies the user's personal information re- 
ceived from . the service user apparatus 12, by compar- 
ing the user's personal information with information 
about the. service user obtained from a reliable external 
inform ationsource (the information being inputted in ad- 
vance in the personal information verification apparatus 
11). 

(3) Attach ID Number and Signature 

[0047] The personal information verification appara- 
tus 11 attaches a user ID number unique to the user and 
a digital signature to each item of the verified user's per- 
sonal information, to generate signed-personal informa- 
tion. 

[0048] FIG. 4 schematically shows an example struc- 
ture of signed-personal information 400. The signed- 
personal information is made up of a plurality of items, 
each of which includes a "main data" part 410 to which 
a "user ID" part 420 and a "signature data" part 430 are 
attached. The "main data" part 410 represents data for 
each item of personal information transmitted from the 
service user apparatus 12. 

[0049] The personal information verification appara- 
tus 11 generates one user ID number and attaches the 
generated user ID number to each item of the personal 
information. The personal information verification appa- 
ratus 11 then generates a digital signature for each item 



10 



[0044] First, the service user apparatus 12 receives 
input of personal information from the service user. The 
service user apparatus 1 2 transmits the input user's per- 
sonal information to the personal information verification 
apparatus 1 1 placed at the authentication center. is 
[0045] FIG. 3 schematically shows the structure of the 
user's personal Information to be transmitted from the 
service user apparatus 12 to the personal information 
verification apparatus 11 . The user's personal informa- 
tion shown in the figure is made up of the items: "name"; 20 
"telephone number"; "address"; "birth date"; "credit card 
number"; "height and weight 1 ' ; and "blood type". It should 
be noted here that the user's personal information is to 
be made up of items required by each service provider 
apparatus included in the system, although the figure 25 
merely shows examples of the items. 



55 



to which the user ID number has been attached, using 
a public key encryption method, and attaches the gen- 
erated digital signature to each item. A digital signature 
generated here for each item is based on concatenated 
data of the contents of the item and the user ID number. 
This means that the value of the digital signature differs 
depending on each item. As one example, the EIGamal 
signature scheme may be employed as a method for 
generating signature data. The EIGamal signature 
scheme is described, for example, in "Gendai Ango 
(Modern Cryptography) "(Sangyo Tosho) written by Tat- 
suaki Okamoto and Hiroshi Yamamoto. 
[0050] The personal information verification appara- 
tus 11 encrypts the signed-personal information, and 
transmits the encrypted signed-personal information to 
the service user apparatus 1 2. To be more specific, the 
personal information verification apparatus 11 performs 
confidential communications based on the SSL (secure 
sockets layer) protocol. 

[0051] Here, if the processing (2) of verifying the per- 
sonal information is unsuccessful, the personal informa- 
tion verification apparatus 11 transmits a message re- 
questing authentic personal information, to the service 
user apparatus 12. The processing then returns to (1 ). 

(4) Store Signed-personal Information 



[0052] The service user apparatus 12 receives the 
signed-personal information transmitted from the per- 

30 sonal information verification apparatus 1 1 , and first de- 
crypts the signed-personal information. Further, the 
service user apparatus 12 encrypts the once decrypted 
signed-personal information using a unique encryption 
key for storage, and stores the encrypted signed-per- 

35 sonal information into. its internal memory card. 

(Service Provision Procedure) 

[0053] The following describes a processing flow of 
40 the service provision procedure where the service pro- 
vider apparatus 1 3 provides services to the service user 
apparatus 1 2 according to an instruction from the serv- 
ice user. 

[0054] FIG . 5 shows the processing flow of the serv- 
es Ice provision procedure. 

(1) Issue Service Request 

[0055] First, the service user apparatus 1 2, which has 
so received a user instruction to obtain services, issues a 
service request to the service provider apparatus 13 via 
the network "N". 



(2) Issue Personal Information Request 

[0056] The service provider apparatus 1 3, which has 
received the service request, issues a personal informa- 
tion request to the service user apparatus 12. The per- 
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sonal information request designates items of personal 
information necessary for the requested service provi- 
sion. The personal information request is described us- 
ing a predetermined format (determined in advance by 
the personal information verification apparatus 11), and 
designates each necessary item using a serial number 
of the item (e.g., the serial number is "1" for the item 
"name" and "3" for the item "address" in the example of 
FIG. 4). 

(3) Transmit Partial Personal Information 

[0057] The service user apparatus 12, which has re- 
ceived the personal information request, decrypts the 
signed-personal information that has been encrypted 
and stored therein, extracts the items designated by the 
personal information request from the decrypted 
signed-personal information, and transmits the extract- 
ed items (= partial personal information) to the service 
provider apparatus 13. The service user apparatus 12 
here performs confidential communications based on 
the SSL protocol for transmitting the partial personal in- 
formation. It should be noted here that the service user 
apparatus 12 judges whether the personal information 
request is from an authentic service provider apparatus 
13, by checking the description format of the personal 
information request. When the description format of the 
personal information request is different from what it 
should be, the service user apparatus 12 determines 
that the personal information request is an unauthorized 
request issued by a third party attempting to imperson- 
ate the service provider, and therefore does not transmit 
the partial personal information ; It is assumed here that 
the service user apparatus 12 is notified in advance of 
the correct format in which the request should be de- 
scribed, by the personal information verification appa- 
ratus 11 . Here, this verification of the personal informa- 
tion request may be performed, based on a digital sig- 
nature attached to the request, instead of being based 
on the description format of the request. In that case, 
the service provider may use a request that has been 
verified and to which a digital signature has been at- 
tached by the personal information verification appara- 
tus 1 1 . Also, the service user apparatus 1 2 may be given 
in advance a public key to be used for verifying the sig- 
nature, by the personal Information verification appara- 
tus 11. 

[0058] FIG. 6 schematically shows an example struc- 
ture of partial personal information 600. The figure ex- 
emplifies the contents of the partial personal informa- 
tion, when the four items "name", "telephone number", 
"address", and "credit card number", out of all items of 
the signed-personal information, are designated by a 
personal information request. 



(4) Verify Personal Information based on User ID 
Number and Signature 

[0059] The service provider apparatus 1 3, which has 
5 received the partial personal information, decrypts the 
partial personal information, and then verifies the partial 
personal information, based on the user ID number and 
signature. The verification process is described in detail 
later. 

w 

(5) Provide Services 

[0060] When the verification of the partial personal in- 
formation is successful, the service provider apparatus 
15 13 provides services to the service user apparatus 12. 
Examples of services to be provided include distribution 
of digital music content via a network. 

[Construction of Each Apparatus] 

20 

[0061] The following describes in detail the construc- 
tion of each of the apparatuses (the personal informa- 
tion verification apparatus 11, the service user appara- 
tus 12, and the service provider apparatus 13) that re- 
25 alize the above-described processing of the service pro- 
viding system 1 . 

[Construction of the Personal Information Verification 
Apparatus 11] 

30 

[0062] The personal information verification appara- 
tus 11 only executes processing relating to the personal 
information verification procedure. 
[0063] FIG. 7 is a block diagram showing the con- 

35 struction of the personal information verification appa- 
ratus 11. The personal information verification appara- 
tus 11 includes a transmission/reception unit 111 , a per- 
sonal information verification unit 112, and a signature 
generation unit 1 1 3. The transmission/reception u nit 1 1 1 

40 transmits and receives data (user's personal informa- 
tion that is yet to be verified, signed-personal informa- 
tion that has been verified, etc.) to and from the service 
user apparatus 1 2. The personal information verification 
unit 112 verifies personal information that has been re- 

45 ceived from the service user apparatus 1 2. The signa- 
ture generation unit 113 attaches signature data guar- 
anteeing the authenticity of personal information, to the 
verified personal information, so as to generate signed- 
personal information. 

50 

(Transmission/reception Unit 111) 

[0064] The transmission/reception unit 111 transmits 
and receives data to and from an external apparatus . 
55 in particular, the transmission/reception unit 111 re- 
ceives a user's personal information from the service us- 
er apparatus 12, and transmits signed-personal infor- 
mation that has been verified, to the service user appa- 
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ratus 12. For transmitting and receiving personal infor- 
mation (both verified and yet to be verified), the trans- 
mission/reception unit 1 1 1 encrypts the data for making 
it confidential. To be more specific, the transmission/re- 
ception unit 111 performs confidential communications 
based on the SSL protocol. 

(Personal Information Verification Unit 112) 

[0065] The personal information verification unit 112 
verifies the user's personal information that has been 
received by the transmission/reception unit 111 (i.e., 
judges whether the user who has sent the personal in- 
formation can be authenticated). The verification can be 
realized by comparing the personal information that has 
been sent by the user, with the same type of information 
that a manager belonging to the authentication center 
has obtained from a reliable external information source 
and inputted into the personal information verification 
unit 112. The information with which the personal infor- 
mation is compared may specifically be information writ- 
ten on a certificate of residence mailed thereto by the 
user, or user information (including a credit card 
number) obtained from a credit card company with the 
user's permission. 

(Signature Generation Unit 113) 

[0066] The signature generation unit 113 attaches a 
digital signature to the personal information that has 
been verified by the personal information verification 
unit 112:>The signature generation unit 113 first receives 
the personal information from the personal information 
verification unit 112, and then, generates one user ID 
number unique to the user, and attaches the generated 
user ID number to the head of each item of. the personal 
information. 

[0067] Then, the signature generation unit 1 13 gener- 
ates a digital signature for each personal information 
item to which the user ID number has been attached, 
and attaches the generated digital signature to each 
item. A method for generating a digital signature here is 
a public key encryption method (e.g., the EIGamal sig- 
nature scheme). To be more specific, the signature gen- 
eration unit 113 uses a private signing key. The private 
signing key Is stored in advance in such an area that 
does not allow references from outside . Using the pri- 
vate signing key, the signature generation unit 1 13 gen- 
erates a digital signature for each item, based on con- 
catenated data of the user ID number and the corre- 
sponding item. It should be noted here that a public sign- 
ing key corresponding to this private signing key is dis- 
tributed in advance to each service provider apparatus 
13 in the service providing system 1 . 
[0068] The digital signature is generated for each item 
of personal information in the above-described way, 
based on the contents of the item and the user ID 
number whose values differ depending on each user. 



As a result, the value of the digital signature differs de- 
pending on each user. Further, the value of the digital 
signature also differs depending on each item of the 
signed-personal information for one user. 

5 

[Construction of the Service User Apparatus 12] 

[0069] The service user apparatus 12 executes 
processing relating to both the personal information ver- 
10 ification procedure and the service provision procedure. 
[0070] FIG. 8 shows the construction of the service 
user apparatus 12. 

[0071] The service user apparatus 12 includes a 
transmission/reception unit 121, a memory card 123, 

*5 and a memory card control unit 1 22. The transmission/ 
reception unit 121 transmits and receives data to and 
from the personal information verification apparatus 11 
and the service provider apparatus 13. The memory 
card 123 is for storing signed-personal information. The 

20 memory card control unit 1 22 controls the memory card 
123. The memory card 123 is detachably inserted into 
a slot of the service user apparatus 12. 



25 



(Transmission/reception Unit 121) 



[0072] In the personal information verification proce- 
dure, the transmission/reception unit 121 transmits and 
receives personal information that is yet to be verified 
and personal information that has been verified, to and 
30 from the personal information verification apparatus 1 1 . 
In the service provision procedure, the transmission/re- 
ception unit 121 transmits and receives various types of 
information (a personal information request, partial per- 
sonal information, and service content) to and from the 
35 service provider apparatus 13. In either procedure, the 
transmission/reception unit 121 performs confidential 
communications based on the SSL protocol for the 
transmission and reception. 

40 (Memory Card Control Unit 122) 

[0073] The memory card control unit 1 22 manages in- 
put and output of signed-personal information to and 
from the memory card 123. In the personal information 
45 verification procedure, the memory card control unit 1 22 
stores signed-personal information into the memory 
card 123. To be more specific, the memory card control 
unit 122 decrypts the signed-personal information that 
has been received as being encrypted, and then outputs 
50 the decrypted signed-personal information to the mem- 
ory card 1 23 together with an instruction to store the de- 
crypted signed-personal information. 
[0074] In the service provision procedure, the memo- 
ry card control unit 122 reads personal information from 
55 the memory card 1 23. To be more specific, the memory 
card control unit 122 first obtains, via the transmission/ 
reception unit 121, a personal information request that 
the service provider apparatus 13 has transmitted in re- 
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sponse to a service request. Then, the memory card 
control unit 122 analyzes the personal information re- 
quest, and identifies items designated as being request- 
ed by the service provider apparatus 13. The memory 
card control unit 1 22 transmits, together with information 
listing the items, an instruction to output the personal 
information to the memory card 123. 

(Memory Card 123) 

[0075] The memory card 1 23 includes an IC card chip 
within which a program can be executed. The functions 
of the memory card 123 are not only to store signed- 
personal information but also to internally execute 
processing relating to the input and output, in response 
to an instruction transmitted from the memory card con- 
trol unit 122. 

[0076] FIG. 9 is a block diagram showing the con- 
struction of the memory card 123. The memory card 123 
may comprise an IC card chip that is tamper- resistant 
(i.e., protected from an unauthorized access) . The IC 
card chip has the functions of storing and executing pro- 
grams. The memory card 123 includes a protected stor- 
age area 1 24 that is tamper- resistant (IC card chip), and 
a general storage area 1 25 that has a large storage ca- 
pacity. In the protected storage area 124, an encryption/ 
decryption unit 126 and a key generation unit 127 are 
provided. The encryption/decryption unit 126 executes 
encryption and decryption processes of signed-person- 
al information. The key generation unit 127 generates 
keys for use in the encryption and decryption processes. 
The protected storage area 124 further includes a key 
storage area 128 for storing keys. It should be noted 
here that the encryption/decryption unit 1 26 and the key 
generation unit 127 are realized by programs stored in 
the protected storage area 1 24. These programs are ex- 
ecuted by an arithmetic unit (not shown) internally pro- 
vided in the memory card 123, so as to function as the 
encryption/decryption unit 126 and the key generation 
unit 127. The following describes the contents of the 
processing to be executed by each of the above-de- 
scribed main components in the personal information 
verification procedure and in the service provision pro- 
cedure. (Decryption/encryption Unit 126) 
[0077] In the personal information verification proce- 
dure, the encryption/decryption unit 126 encrypts 
signed-personal information transferred from the mem- 
ory card control unit 122, and stores the encrypted 
signed-personal information into the general storage ar- 
ea 125. To be more specific, the encryption/decryption 
unit 126 instructs the key generation unit 127 to gener- 
ate a key, at the time when receiving the signed-person- 
al information from the memory card control unit 122. 
Then, upon receipt of Regenerated encryption key from 
the key generation unit 127, the encryption/decryption 
unit 126 encrypts the signed-personal information using 
this encryption key, and stores the encrypted signed- 
personal information into the general storage area 125. 



[0078] In the service provision procedure, the encryp- 
tion/decryption unit 1 26 decrypts the stored signed-per- 
sonal information and outputs the decrypted signed-per- 
sonal information in response to a request from the 

5 memory card control unit 1 22. To be more specific, upon 
receipt of the request from the memory card control unit 
1 22, the encryption/decryption unit 1 26 reads a decryp- 
tion key from the key storage area 1 28 and the encrypt- 
ed signed-personal information from the general stor- 

10 age area 125. Then, the encryption/decryption unit 126 
decrypts the signed-personal information using the de- 
cryption key. Here, only the items of the signed-personal 
information designated by the memory card control unit 
122 are to be read and decrypted. The encryption/de- 

15 cryption unit 126 transmits the decrypted signed-per- 
sonal information to the memory card control unit 122. 

(Key Generation Unit 127) 

20 [0079] The key generation unit 1 27 executes process- 
ing only in the personal information verification proce- 
dure. The key generation unit 1 27 generates an encryp- 
tion key and a decryption key for signed-personal infor- 
mation, in response to an instruction transmitted from 

25 the encryption/decryption unit 126. Then, the key gen- 
eration unit 127 transmits the encryption key to the en- 
cryption/decryption unit 126 and stores the decryption 
key into the key storage area 1 28. The key storage area 
128 is included in the protected storage area 124, and 

30 therefore, the decryption key stored therein cannot be 
directly accessed from outside of the card. The data en- 
cryption method employed here may either be a public 
key encryption method or a private key encryption meth- 
od. For example, the DES (Data Encryption Standard) 

35 encryption method that is one type of a private key en- 
cryption method can be employed. In the case where a 
private key encryption method is employed, the encryp- 
tion key and the decryption key are identical. It should 
be noted here that the DES encryption method is de- 

40 scribed, for example, in "Gendai Ango (Modern Cryp- 
tography)" (SangyoTosho) written byTatsuakiOkamoto 
and Hiroshi Yamamoto. 



[Construction of the Service Provider Apparatus 13] 



45 



[0080] The service provider apparatus 13 executes 
processing in the service provision procedure. 
[0081] FIG. 1 0 shows the construction of the service 
provider apparatus 13. The service provider apparatus 
so 1 3 includes a transmission/reception unit 1 31 , a signa- 
ture verification unit 132, and a memory device 133. The 
transmission/reception unit 131 transmits and receives 
data to and from the service user apparatus 1 2. The sig- 
nature verification unit 132 verifies signed-personal in- 
55 formation that is transmitted from the service user ap- 
paratus 1 2 together with a service request. The memory 
device 133 stores service content to be provided. 
[0082] The transmission/reception unit 131 receives 
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a service request from the service user apparatus 12. 
In response to the service request, the transmission/re- 
ception unit 131 transmits a personal information re- 
quest to the service user apparatus 12, and receives 
partial personal information from the service user appa- 5 
ratus 12. Upon receipt of the requested partial personal 
information, the transmission/reception unit 131 trans- 
mits the partial personal information to the signature ver- 
ification unit 1 32. When the verification of the partial per- 
sonal information by the signature verification unit 132 10 
is successful, the transmission/reception unit 131 reads 
service content requested by the memory device 133, 
and transmits the service content to the service user ap- 
paratus 12. When the verification of the partial personal 
information by the signature verification unit 132 is un- is 
successful, the transmission/reception unit 131 trans- 
mits an error message to the service user apparatus 1 2. 
It should be noted here that when the service content is 
transmitted to the service user apparatus 12, the trans- 
mission/reception unit 131 enters such information that 20 
is necessary for billing a service fee (i.e., user name, 
credit card number, and service content provided) into 
a historical database that is not shown in the figure. 
Such information is later referred to at the time of serv- 
ice-fee settlement. 25 
[0083] The signature verification unit 132 analyzes 
the service request that the transmission/reception unit 

131 has : received from the service user apparatus 12, 
and identifies items of personal information necessary 

for the requested service provision. Then, the signature 30 
verification unit 132 generates a personal information 
request for requesting the items, and transmits the gen- 
erated personal information request to the transmission/ 
reception unit 131, so as to instruct the transmission/ 
reception unit 1 31 to transmit these items to the service 35 
user apparatus 12. 

[0084] Following this, the signature verification unit 

132 obtains, via the transmission/reception unit 131 , the 
requested partial personal information transmitted from 

the service user apparatus 12. Then, the signature ver- 40 
ification unit 1 32 verifies the partial personal information 
based on the attached signature and user ID. 
[0085] To verify the partial personal information, the 
signature verification unit 132 performs the following 
"signature verification" and "user ID matching". To be *s 
more specific, the signature verification unit 132 first 
judges whether each item of the partial personal infor- 
mation has been verified by the personal information 
verification apparatus 11 (signature verification). As this 
judgment method, a well-known method using a public so 
signing key is employed. The public signing key is dis- 
tributed in advance from the personal information veri- 
fication unit 11. To be more specific, the signature veri- 
fication unit 1 32 judges whether the relationship among 
(a) the public signing key, (b) the "signature data" part 55 
430 (see FIG. 4) that has been attached to each item, 
and (c) data on which the signature is based (i.e., the 
concatenated data of the "user ID" part 420 and the 



"main data" part 41 0) satisfies a predetermined relation- 
ship called a "signature verification expression". 
[0086] The signature verification unit 132 further judg- 
es whether each item of the partial personal information 
is given the same user ID number (user ID matching). 
Because the above signature verification can only indi- 
cate the authenticity of each individual item, this user ID 
matching needs to be performed for the purpose of de- 
tecting such signed-personal information that is forged 
for a person who does not actually exist. For example, 
signed-personal information may be forged by a method 
of extracting some items from a plurality of users' 
signed-personal information and combining these 
items. To detect such forged signed-personal informa- 
tion, the judgment is performed as to whether the user 
IDs attached to all the items of the partial personal in- 
formation match. When judging that the user IDs at- 
tached to all the items do not match, the signature ver- 
ification unit 132 determines that the signed-personal 
information has been forged as including items extract- 
ed from plural users' signed-personal information.. 
[0087] If the verification of the signed-personal infor- 
mation by the signature verification unit 132 using either 
the signature verification or the user ID matching is un- 
successful, the signature verification unit 132 transmits 
a message indicating that an unauthorized conduct has 
been detected, to the transmission/reception unit 131, 
and instructs the transmission/reception unit 131 to 
transmit an error message to the service user apparatus 
12. "-. .... 

[Conclusions] 

[0088] In the service providing system 1 relating to the 
present embodiment as described above, the personal 
information verification apparatus 11 verifies personal 
information , attaches a signature to the verified personal 
information to generate signed-personal information, 
and then returns the signed-personal information to the 
service user apparatus 1 2. insteadof centrally managing 
signed-personal information in conventional ways. To 
be more specific, signed-personal information for each 
user is stored in the service user apparatus 12 held by 
each user. Unlike conventional systems, therefore, the 
service providing system 1 is free from such security 
problems as leaking out of personal information for a 
large number of users at once from the authentication 
center. Also, the service providing system 1 can exhibit 
enhanced system stability because the service user ap- 
paratus 12 in the system 1 is not required to access the 
authentication center when using services. 
[0089] Further, in the service user apparatus 12, the 
signed-personal information is encrypted and then 
stored in the memory card, and its decryption key is 
stored in an area that does not allow references from 
outside. In this way, the security of the signed-personal 
information is strictly protected. Therefore, the fact that 
the manager of the signed-personal information is 
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changed from the authentication centerto the user does 
not cause the reliability of the slgned-personal informa- 
tion in the service providing system 1 to become inferior 
to that in the conventional systems. 
[0090] Also, a user ID number unique to a user is at- 
tached to each item of signed-personal information for 
the user. Assume for example that a third party attempts 
to forge signed-personal information for a person who 
does not actually exist, by combining a name of user A 
and an address of user B, with the intension of receiving 
services in an unauthorized manner. Even if such an at- 
tempt is made, the user ID numbers attached to all the 
items of the forged signed-personal information do not 
match, and so the unauthorized conduct can be detect- 
ed. In this way, the reliability of the signed-personal in- 
formation as seen from the service provider is en- 
hanced. 

[0091 ] Also, the signed-personal information is stored 
in the memory card that is detachable. Therefore, when 
the service user apparatus needs to be exchanged to a 
new apparatus due to breakdown or the like, the user is 
simply required to move the memory card to the new 
apparatus. By doing so, the user can immediately re- 
ceive services using the new apparatus. 
[0092] In conventional service providing systems, the 
service user apparatus is required to access the authen- 
tication center every time when receiving services. In 
such systems, the authentication center can be given 
information about the state of service use, such as in- 
formation about the frequency and types of service pro- 
viders each user uses (i.e., preference of each service 
user, sales performance of each service provider, etc.). 
In the service providing system 1 relating to the present 
embodiment, however, the service user apparatus is not 
required to access the authentication center when re- 
ceiving services, and so the authentication center has 
no chance of obtaining such information. Accordingly, 
the service users and service providers do not have to 
worry about leakage of information via the authentica- 
tion center. This system 1 therefore is more reliable for 
the service providers than conventional systems. 

Modified Example 

[0093] In the service providing system 1 relatingtothe 
embodiment described above, the signed-personal in- 
formation is protected strictly within the service user ap- 
paratus 12. However, even this system 1 has the pos- 
sibility that the signed-personal information may be sto- 
len by a third party using unauthorized means such as 
wiretapping. If this happens, the third party can imper- 
sonate the user by presenting the stolen signed-person- 
al information to the service provider apparatus. 
[0094] To prevent such a third party who has man- 
aged to steal signed-personal information from being 
able to impersonate the user with the stolen information, 
the present modified example discloses a service pro- 
viding system in which a service provider can authenti- 



cate a transmission source of personal information by 
an authentication method based on a public key encryp- 
tion method. 

[0095] The following describes the characteristics of 

5 the service providing system relating to the present 
modified example. The service user apparatus gener- 
ates in advance a pair of public and private keys to be 
used for apparatus authentication that is required before 
receiving services. The personal information verification 

10 apparatus in advance verifies the public key for appara- 
tus authentication purposes (public authentication key), 
as one item of personal information. For receiving serv- 
ices, the service user apparatus transmits signed-per- 
sonal information including the public authentication 

is key, to the service provider. The service provider pro- 
vides services to the service user apparatus only after 
authenticating the service user apparatus. 
[0096] As the construction unique to the present mod- 
ified example, the service user apparatus additionally 

20 includes an authentication key generation unit. The au- 
thentication key generation unit generates a pair of pub- 
lic and private keys for apparatus authentication purpos- 
es, at the time when the user inputs personal information 
that is to be verified. Also, the signature verification unit 

25 included in the service provider apparatus executes 
processing of authenticating the transmission source of 
the personal information using the public authentication 
key, in addition to the processing described in the above 
embodiment. 

30 [0097] The following describes the personal informa- 
tion verification procedure and the service provision pro- 
cedure in the present modified example, with reference 
to the drawings . It should be noted here that parts of 
these procedures that overlap with the procedures de- 

35 scribed in the above embodiment are not described 
here. 

[0098] FIG. 11 shows the personal information verifi- 
cation procedure in the present modified example. 
[0099] The processing unique to the present modified 

40 example is the processing (1a) of generating authenti- 
cation keys. Here, the authentication key generation 
unit, which has received input of personal information 
from the user, generates a pair of public and private au- 
thentication keys, based on the public key encryption 

45 method. Then, the authentication key generation unit 
transmits the public authentication key to the transmis- 
sion/reception unit 121 (see FIG. 8), together with the 
input personal information, and instructs the transmis- 
sion/reception unit 121 to transmit the public authenti- 

50 cation key and the personal information, to the personal 
information verification apparatus. On the other hand, 
the authentication key generation unit stores the private 
authentication key into the key storage area 1 28 (see 
FIG. 9) included in the protected storage area 1 24 within 

55 the memory card 1 23. Here, any types of public key en- 
cryption methods can be employed. For example, the 
EIGamal encryption method can be employed. 
[0100] The processing (2) and the processing (3) to 
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be executed thereafter by the personal information ver- 
ification apparatus 1 1 are the same as those described 
in the above embodiment. The public authentication key 
is handled in the same manner as other items of per- 
sonal information. 5 
[01 01 ] FIGS. 1 2A and 1 2B show an example structure 
of personal information in the present modified example. 
FIG. 12A shows personal information that is yet to be 
verified and signed. FIG. 12B shows personal informa- 
tion that has been verified and signed. The personal in- to 
formation in the modified example differs from the per- 
sonal information in the above embodiment in that it ad- 
ditionally includes "public authentication key" data 1 201 
as one item. In the same way as other items of the per- 
sonal information, a user ID number is first attached to t5 
this item of public authentication key and then a digital 
signature is attached to the item. 
[0102] The processing (4) to be executed after the 
signed-personal information is transmitted to the service 
user apparatus is also the same as that described in the 20 
above embodiment. 

[0103] FIG. 1 3 shows the service provision procedure 
in the present modified example. 

[01 04] The processing unique to the present modified 
example is the processing (4a) of apparatus authenti- 25 
cation using public key encryption. 
[0105] = 4?; The processing (1) of issuing a service re- 
quest, through the processing (4) of verifying personal 
information based on an ID number and signature are 
substantially the same as those described in the above 30 
embodiment. It should be noted here that in the process- 
ing (2), ^personal information request transmitted from 
the service provider apparatus to the service user ap- 
paratussinevitably designates the public authentication 
key as one item necessary for any service provision. 35 
[01 06] The processing (4a) is executed by the signa- 
ture verification unit (see FIG. 1 0) included in the service 
provider apparatus. The signature verification unit first 
executes the processing (4) of verifying the partial per- 
sonal information based on a user ID number and sig- *o 
nature, and then judges whether the transmission 
source of the personal information is an authentic serv- 
ice user apparatus (an apparatus that stores the corre- 
sponding private authentication key). As the judgment 
method, any types of methods based on a public key *5 
encryption method can be employed. One example is a 
method described in "9.4 Public Key Cryptography - 
System using Digital Signatures"\n "GendaiAngo (Mod- 
ern Cryptography)". (Sangyo Tosho) written by Tatsuaki 
Okamoto and Hiroshi Yamamoto. 50 
[0107] In the service provision procedure in the 
present modified example, the personal information 
transmission source is authenticated using a public key 
encryption method. Therefore, receiving services is im- 
possible with an apparatus that does not store a private 55 
authentication key corresponding to a public authenti- 
cation key included in the signed partial personal infor- 
mation. Accordingly, even if a third party attempts to ob- 



tain signed-personal information in an unauthorized 
manner and impersonate an authenticated service user, 
with the intension of receiving services, such an attempt 
ends in failure. This further enhances the reliability of 
the signed-personal information in the service providing 
system. Also, once a private authentication key is gen- 
erated and stored, output of the private authentication 
key from the protected storage area in the memory to 
outside is not allowed, thereby enabling the system to 
be highly secure. 

[0108] Although the present invention has been fully 
described by way of examples with reference to the ac- 
companying drawings, it is to be noted that various 
changes and modifications will be apparent to those 
skilled in the art. Therefore, unless such changes and 
modifications depart from the scope of the present in- 
vention, they should be construed as being included 
therein. 

[01 09] For example, an expiration time may be set for 
signed-personal information. To be more specific, the 
personal information verification apparatus attaches ex- 
piration-time information to signed-personal informa- 
tion. The service provider refers to the expiration time 
before providing services. If the personal information is 
expired, the service provider issues, to the service user 
apparatus that has transmitted the signed-personal in- 
formation, a request to obtain new signed-personal in- 
formation that is based on the latest personal informa- 
tion. In this way, the reliability of the signed-personal in- 
formation can be enhanced further. 
[0110] Also, in the service provision procedure, a 
process of decrypting encrypted signed-personal infor- 
mation to be executed within the memory card may not 
be started until a password set in advance by the service 
user is inputted. In this case, even if the service user 
apparatus with the memory card being inserted therein 
is stolen by a third party, the third party, who does not 
know the password, cannot receive services using the 
personal information stored in the memory card. This 
enhances the security. Here, biometrics information of 
the service user (such as a fingerprint, iris code, and 
voice print) may be used instead of a password. 
[0111] Also, although the above embodiment de- 
scribes the case where the communications between 
the persona! Information verification apparatus and the 
service user apparatus, and between the service user 
apparatus and the service provider apparatus are real- 
ized by confidential communications based on the SSL 
protocol, the confidential communications may be real- 
ized by other methods. 

[0112] Also, although the above embodiment de- 
scribes the case where passing of personal information 
between the personal information verification apparatus 
11 and the service user apparatus 12 in the personal 
information verification procedure is realized by commu- 
nications via a network, the passing of personal infor- 
mation may be realized by othermethods. For example, 
the service user may bring the service user apparatus 
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1 2 to the authentication center 1 , and directly input and 
output data by operating the service user apparatus 12 
and the personal information verification apparatus 11. 
Alternatively, personal information may be recorded on 
a memory card, the memory card storing the personal 5 
information may be mailed to the authentication center 
1 , and the authentication center 1 may return the mem- 
ory card to the user. In either case, the leakage of per- 
sonal information via communication paths can be pre- 
vented. The service providing system in which the per- 10 
sonal information verification apparatus and the service 
user apparatus are not connected via a network is also 
possible. 

[01 1 3] Also, the service user may be enabled to check 
contents of a personal information request before the 15 
service user apparatus transmits partial personal infor- 
mation in response to the personal information request 
transmitted from the service provider apparatus. To re- 
alize this, an interface unit can be additionally included 
in the service user apparatus . The interface unit may 
display the request contents on the screen, and receive 
an instruction from the service user. Alternatively, the 
interface unit may receive in advance, from the service 
user, designation of items that can be presented from 
the service user to the service provider. 
[0114] Also, the personal information verification ap- 
paratus may verify in advance the contents of a personal 
information request that the service providing apparatus 
transmits to the service user apparatus at the time of 
service provision, in the same manner as that for veri- 
fying a user's personal information. In this case, a sig- 
nature may be attached to data of the authenticated per- 
sonal information request, and the signed request may 
be returned to the service provider apparatus. Then, the 
service user apparatus may respond only to such a per- 
sonal information request that has a signature indicating 
its authenticity. In this case, a public key for signature 
verification is transmitted in advance from the personal 
information verification apparatus to the service user ap- 
paratus. By doing so, even if a third party who attempts 
to send an unauthorized personal information request 
and impersonate the service provider, such an attempt 
ends in failure. This enhances the security of the per- 
sonal information within the system. 
[01 1 5] Further, the construction part of the service us- 
er apparatus for storing signed-personal information 
may not necessarily be realized by a memory card. The 
storage apparatus included in the service user appara- 
tus may be provided with a storage area protected from 
an unauthorized access, and signed-personal informa- so 3. 
tion may be stored in this storage area. 
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user's personal information, the verification ap- 
paratus including a personal information verifi- 
cation unit operable to verify an authenticity of 
the user's personal information and a signed- 
personal information generation unit operable, 
when the verification by the personal informa- 
tion verification unit is successful, to generate 
signed-personal information by attaching a dig- 
ital signature to the user's personal information 
and to transmit the signed-personal informa- 
tion; 

a service user apparatus including a signed- 
personal information reception unit operable to 
transmit the user's personal information to the 
verification apparatus and to receive the 
signed-personal information from the verifica- 
tion apparatus, an information management 
unit operable to store and manage the received 
signed-personal information, a service request 
transmission unit operable to read the signed- 
personal information from the information man- 
agement unit and to transmit the read signed- 
personal information together with a service re- 
quest, and a service reception unit operable to 
receive services; and 

a service provider apparatus operable to pro- 
vide, based on the user's personal information, 
the services to the service user apparatus via 
the network, the service provider apparatus in- 
cluding a service request reception unit opera- 
ble to receive the service request and the 
signed-personal information from the service 
user apparatus, a signed-personal information 
verification unit operable to verify an authentic- 
ity of the received signed-personal information, 
based on the digital signature included therein 
and a service provision unit operable to provide 
the services to the service user apparatus in re- 
sponse to the service request, when the verifi- 
cation by the signed-personal information ver- 
ification unit is successful. 

The service providing system of Claim 1 , wherein 
the information management unit is operable to 
store the signed-personal information in a state that 
prevents external access thereof, and to allow the 
signed-personal information to be read only when 
key information set in advance is inputted . 

The service providing system of Claim 2, wherein 
the key information is password information or bio- 
metrics information. 



Claims 

1 . A service providing system comprising: 

a verification apparatus operable to receive a 
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The service providing system of Claim 1 , wherein 
the information management unit comprises: 

a key generation subunit operable to generate 
an encryption key to be used for encrypting the 
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signed-personal information, and a decryption 
key to be used for decrypting the encrypted 
signed-personal information; 
a key storage subunit operable to store the de- 
cryption key; 

an encryption subunit operable to encrypt the 
signed-personal information using the encryp- 
tion key; 

an information storage subunit operable to 
store the signed-personal information encrypt- 
ed by the encryption subunit; and 
a decryption subunit operable to decrypt the en- 
crypted signed-personal information read from 
the information storage subunit using the de- 



nature attached to the personal information request 
using a form-signing public key distributed in ad- 
vance from the verification apparatus, and when the 
verification of the digital signature using the form- 
5 signing public key is successful, to determine that 
the personal information request satisfies the pre- 
determined condition. 

8. The service providing system of Claim 1, wherein 
10 the user's personal information comprises a plural- 
ity of data items, 

wherein the signed-personal information gen- 
eration unit is operable to generate the signed-per- 
sonal information, by attaching a digital signature to 
each data item of the user's personal information, 
and 

wherein the signed-personal information ver- 
ification unit is operable to verify an authenticity of 
the signed-personal information, by verifying an au- 
thenticity of the digital signature attached to each 
data item. 

9. The service providing system of Claim 1 , wherein 
the user's personal information comprises a plural- 
ity of data items, 

wherein the signed-personal information gen- 
eration unit is operable to generate the signed-per- 
sonal information, by attaching a user ID unique to 
the user to each data item and attaching a digital 
signature to each data item to which the user JD has 
been attached, and 

wherein the signed-personal information ver- 
ification unit is operable to judge whether user IDs 
attached to all data items of the signed-personal in- 
formation received by the service request reception 
unit match, and when judging that the user IDs do 
mot match, to determine that verification of the 
signed-personal information is unsuccessful. 

10. The service providing system of Claim 9, wherein 
the signed-personal information generation unit is 
operable to attach, to each data item to which the 
user ID has been attached, a digital signature gen- 
erated using contents of the data item and the user 
ID, and 

wherein the signed-personal Information ver- 
ification unit is operable to verify an authenticity of 
the signed-personal information, by verifying an au- 
thenticity of the digital signature attached to each 
data item. 

11. The service providing system of Claim 1, wherein 
the service user apparatus further includes: an au- 
thentication key generation unit operable to gener- 
ate a pair of public and private keys to be used for 
authentication of the service user apparatus, and a 
private key. storage unit operable to store, in a form 
that limits external access thereof, the private key 



cryption key read from the key storage subunit. is 

5. The service providing system of Claim 4, wherein 
the information management unit comprises an IC 
memory card that includes a protected storage ar- 
ea, a general storage area, and an arithmetic unit, 20 

wherein the protected storage area is protect- 
ed from external access thereof, the general stor- 
age area is operable to allow external access there- 
of, and the arithmetic unit is operable to execute a 
program, 25 

wherein the encryption subunit and the de- 
cryption subunit are realized by the arithmetic unit 
executing programs stored in the protected storage 
area, 

- wherein the key storage subunit is operable 30 
to store the decryption key into the protected stor- 
age; area, and 
■ vs?; wherein the information storage subunit is op- 
erable to store the encrypted signed-personal infor- 
mation into the general storage area. 35 

6. The service providing system of Claim 1, wherein 
the service request reception unit is operable to 
transmit a personal information request to the serv- 
ice user apparatus, before receiving the signed-per- 40 
sonal Information from the service, user apparatus, 
and 

wherein the service request transmission unit 
is operable to receive the personal information re- 
quest before starting to transmit the signed-person- *s 
al information, and only when the received personal 
information request satisfies a predetermined con- 
dition, to transmit the signed-personal information 
to the service provider apparatus. 

so 

7. The service providing system of Claim 6, wherein 
the personal information request has been gener- 
ated in a format determined in advance, 

wherein the personal information request has 
been verified and a digital signature has been at- 55 
tached thereto by the verification apparatus, and 

wherein the service request transmission unit 
is operable to verify an authenticity of the digital sig- 
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generated by the authentication key generation 
unit, 

wherein the signed-personal information re- 
ception unit is operable to incorporate the private 
key generated by the authentication key generation 
unit into the user's personal information that is to be 
transmitted to the verification apparatus, 

wherein the service request transmission unit 
is operable to incorporate the private key generated 
by the authentication key generation unit into the 
signed-personal information that is to be transmit- 
ted to the service provider apparatus, and 

wherein the signed-personal information ver- 
ification unit is operable to perform authentication 
of the service user apparatus using a public key en- 
cryption method, by referring to the private key in- 
corporated in the signed-personal information 
transmitted by the service request transmission 
unit, and when the authentication is successful, to 
determine that verification of the signed-personal 
information is successful. 
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12. The service providing system of Claim 11 , wherein 
the private key storage unit comprises a storage 
medium having a protected storage area that allows 25 
only limited external access thereof, and stores the 
private key into the protected storage area. 



13. A verification apparatus for use in a service provid- 
ing system where services are provided from a 
service provider apparatus to a service user appa- 
ratus via a network, based on a user's personal in- 
formation that is verified by the verification appara- 
tus, the verification apparatus comprising: 

a personal information verification unit opera- 
ble to verify an authenticity of the user's per- 
sonal information that is received from the serv- 
ice user apparatus; and 
a signed-personal information generation unit 
operable to, when the verification by the per- 
sonal information verification unit is successful, 
generate signed-personal information by at- 
taching a digital signature to the verified user's 
personal information and transmit the signed- 
personal information to the service user appa- 
ratus. 

14. A service user apparatus for use in a service pro- 
viding system where services are provided from a 
service provider apparatus to the service user ap- 
paratus via a network, based on a user's personal 
information that is verified by a verification appara- 
tus, the service user apparatus comprising: 

a signed-personal information reception unit 
operable to transmit the user's personal infor- 
mation to the verification apparatus and re- 
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ceive, from the verification apparatus, signed- 
personal information that is the user's personal 
information verified by the verification appara- 
tus; 

an information management unit operable to 
store and manage the received signed-person- 
al information; 

a service request transmission unit operable to 
read the signed-personal information from the 
information management unit, and transmit the 
read signed-personal information together with 
a service request, to the service provider appa- 
ratus; and 

a service reception unit operable to receive 
services that are provided by the service pro- 
vider apparatus in response to the service re- 
quest. 

15. An information management apparatus for use in a 
service providing system where services are pro- 
vided from a service provider apparatus to a service 
user apparatus via a network based on a user's per- 
sonal information that is verified by a verification ap- 
paratus, the information management apparatus 
being operable to be used by the service user ap- 
paratus for storing signed-personal information that 
is the verified user's personal information, the infor- 
mation management apparatus comprising: 

a key generation unit operable to generate an 
encryption key to be used for encrypting the 
signed-personal information, and a decryption 
key to be used for decrypting the encrypted 
signed-personal information; 
a key storage unit operable to store the decryp- 
tion key; 

an encryption unit operable to encrypt the 
signed-personal information using the encryp- 
tion key; 

an information storage unit operable to store 
the signed-personal information encrypted by 
the encryption unit; and 
a decryption unit operable to decrypt the en- 
crypted signed-personal information read from 
the Information storage unit using the decryp- 
tion key read from the key storage unit, 

wherein the information management appa- 
ratus comprises an IC memory card that includes a 
protected storage area, a general storage area, and 
an arithmetic unit, 

wherein the protected storage area is protect- 
ed from external access thereof, the general stor- 
age area is operable to allow external access there- 
of, and the arithmetic unit is operable to execute a 
program, 

wherein the encryption unit and the decryp- 
tion unit are realized by the arithmetic unit executing 
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programs stored in the protected storage area, 

wherein the key storage unit is operable to 
store the decryption key into the protected storage 
area, and 

wherein the information storage unit is oper- 5 
able to store the encrypted signed-personal infor- 
mation into the general storage area. 

16. A service provider apparatus for use in a service 
providing system where services are provided from io 
the service provider apparatus to a service user ap- 
paratus via a network, based on a user's personal 
information that is verified by a verification appara- 
tus, the service provider apparatus comprising: 

15 

a service request reception unit operable to re- 
ceive, from the service user apparatus, a serv- 
ice request and signed-personal Information 
that is the user's personal information verified 
by the verification apparatus; 20 
a signed-personal information verification unit 
operable to verify an authenticity of the re- 
ceived signed-personal information, based on 
a digital signature included therein; and 
a service provision unit operable to provide 25 
services in response to the service request, to 
jthe service user apparatus, when the verifica- 
tion by the signed-personal information verifi- 
cation unit is successful. 

30 

1 7. A service providing method for use in a service pro- 
viding system where services are provided from a 
service provider apparatus to a service user appa- 
ratus via a network, based on a user's personal in- 
formation that is verified by a verification apparatus, 35 
the method comprising: 

verifying personal information via the verifica- 
tion apparatus by verifying an authenticity of 
the user's personal information that is received *o 
from the service user apparatus; 
generating signed-personal information via the 
verification apparatus by attaching a digital sig- 
nature to the verified user's personal informa- 
tion and transmitting the signed-personal infor- 45 
mation to the service user apparatus, when the 
verification of the personal information is suc- 
cessful; 

receiving signed-personal information via the 
service, user apparatus by transmitting the us- so 
er's personal information to the verification ap- 
paratus and receiving the signed-personal in- 
formation from the verification apparatus; 
performing information management via the 
service user apparatus by storing and ma nag- 55 
ing the received signed-personal information; 
transmitting a service request via the service 
user apparatus by reading the signed-personal 



information and transmitting the read signed- 
personal information together with a service re- 
quest to the service provider apparatus; 
receiving services via the service user appara- 
tus by receiving services that are provided by 
the service provider apparatus in response to 
the service request; 

receiving a service request via the service pro- 
vider apparatus by receiving the service re- 
quest and the signed-personal information from 
the service user apparatus; 
verifying signed-personal information via the 
service provider apparatus by verifying an au- 
thenticity of the received signed-personal infor- 
mation, based on the digital signature included 
therein; and 

providing services via the service provider ap- 
paratus by providing the services to the service 
user apparatus, when the verification of the 
signed-personal information is successful. 
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